Revisions of openconnect
buildservice-autocommit
accepted
request 805978
from
Martin Hauke (mnhauke)
(revision 8)
auto commit by copy to link target
Martin Hauke (mnhauke)
committed
(revision 7)
- Update to version 8.10: * Install bash completion script to ${datadir}/bash-completion/completions/openconnect. * Improve compatibility of csd-post.sh trojan. * Fix potential buffer overflow with GnuTLS describing local certs (CVE-2020-12823). - Update to 8.09:
buildservice-autocommit
accepted
request 799557
from
Martin Hauke (mnhauke)
(revision 6)
auto commit by copy to link target
Martin Hauke (mnhauke)
committed
(revision 5)
- Fix CVE-2020-12105 (boo#1170452)
Martin Hauke (mnhauke)
committed
(revision 4)
- Fix CVE-2020-12105 - Introduce subpackage for bash-completion - Update to 8.0.9: * Add bash completion support. * Give more helpful error in case of Pulse servers asking for TNCC. * Sanitize non-canonical Legacy IP network addresses. * Fix OpenSSL validation for trusted but invalid certificates (CVE-2020-12105). * Convert tncc-wrapper.py to Python 3, and include modernized tncc-emulate.py as well. (!91) * Disable Nagle's algorithm for TLS sockets, to improve interactivity when tunnel runs over TCP rather than UDP. * GlobalProtect: more resilient handling of periodic HIP check and login arguments, and predictable naming of challenge forms. * Work around PKCS#11 tokens which forget to set CKF_LOGIN_REQUIRED. - Update to 8.0.8: * Fix check of pin-sha256: public key hashes to be case sensitive * Don't give non-functioning stderr to CSD trojan scripts. * Fix crash with uninitialised OIDC token. - Update to 8.0.7: * Don't abort Pulse connection when server-provided certificate MD5 doesn't match. * Fix off-by-one in check for bad GnuTLS versions, and add build and run time checks. * Don't abort connection if CSD wrapper script returns non-zero (for now). * Make --passtos work for protocols that use ESP, in addition to DTLS.
buildservice-autocommit
accepted
request 704049
from
Martin Hauke (mnhauke)
(revision 3)
auto commit by copy to link target
Martin Hauke (mnhauke)
committed
(revision 2)
- Update to 8.0.3: * Fix Cisco DTLSv1.2 support for AES256-GCM-SHA384. * Fix recognition of OTP password fields. - Verify source signature
Martin Hauke (mnhauke)
committed
(revision 1)
Displaying all 8 revisions